Back to directory

WRITEUP #2212

Data Exfiltration through Blind XXE on PDF Generator

XXEBlind XXEWAF bypass

by@arbennsh(Arben Shala)

Program

-

Published

Sep 13, 2022

Added to HackDex

Sep 26, 2022

Read Full Writeuphttps://arben.sh/bugbounty/Blind-XXE-CVE-2019-12154/

▸ RELATED WRITEUPS

The Hunt for XXE to LFI: How I Uncovered CVE-2019–9670 in a Bug Bounty Program

Listen to the whispers: web timing attacks that actually work

SSRFTiming attack

Built with ❤️ by Shubham Rawat